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In re Patent Application for; 

First Named Inventor: FAVIER, VALERIE Art Unit: 2141 

Appln.No.: 09/740,801 Examiner: WILLETT 
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SYSTEM 
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REQUEST FOR RECONSIDERATION AFTER FINAL 

Commissioner for Patents 
P.O. Box 1450 
Alexandria, VA 22313-1450 

Sir: 

In response to the Final Office action dated December 3, 2004, 
reconsideration in view of the following Remarks is respectfully requested. 

Claims 1 1-24 and 26 are pending and are rejected under 35 U.S.C. § 103(a) as 
unpatentable over Reid et al. and Antur et ai. 

Independent Claim 1 1 recites, inter alia, a method for controlling access to 
network resources having, at a central configuration machine, defining an internal 
protection domain for each of a plurality of firewalls . . .defining at least one external 
protection domain for the plurality of firewalls . . .creating a plurality of resource 
groups . . . specifying an access control rule . . .configuring each firewall using the 
access control rules and, at each firewall, in response to a request to access a 
destination network resource received from a source network resource, determining 
whether to apply the access control rule specified for the resource group associated 
with the destination network resource based on the scope of the access control rule. 

Independent Claim 23 recites, inter alia, a system for controlling access to 
network resources comprising a plurality of firewalls, coupled to the external 
network, each firewall including at least one internal subnetwork, each internal 
subnetwork having at least one access-control network resource . . .a central 



